Software Download

Product Tour

Collect and Index Data

Search and Investigate

Correlate and Analyze

Visualize and Report

Monitor and Alert

Access from Anywhere

Collect and Index Data

Index data regardless of format or location – metrics, logs, clickstreams, sensors, stream network traffic, web servers, custom applications, hypervisors, social media, and cloud services. Because the structure and schema are applied only at search time you can analyze the data without limitation.

Search and Investigate

Search data using the powerful and intuitive Splunk Search Processing Language (SPL™). Splunk automatically normalizes your varying data formats and provides 140+ commands so you can perform statistical searches, calculate metrics and even look for specific conditions within a rolling time window. Zoom in and out on timelines to automatically reveal trends, spikes and patterns and click to drill down into search results.

Correlate and Analyze

Splunk makes it easy to find relationships between events or activities. Correlate based on time, location, or custom search results. Use the Transaction command to identify related events as a transaction or session and investigate failed transactions. Decipher what is and is not actionable from disparate data sources with Event Annotation. Enable users to discover and share insights with the point-and-click ease of the Tables and Pivot interfaces. Use the power of machine learning to automatically identify anomalies and incidents.

Visualize and Report

Visualize trends and characteristics in custom dashboards and reports suited to any business, operational or security need. Analyze further with chart overlay and pan and zoom controls. Predictive visualizations let you forecast highs and lows, plan system resources and anticipate workloads. You can also personalize dashboards and reports for anyone, share them as PDFs, or embed them into other applications.

Monitor and Alert

Turn searches into real-time alerts and automatically trigger notifications via email or RSS; then execute remedial actions, send an SNMP trap or generate a trouble ticket. Alerts can be triggered based on a variety of thresholds, trend-based conditions and other complex criteria. Gain additional information at the time of the alert to assist with faster root cause analysis and problem resolution.

Any Data. Any Question. In Real Time.

Splunk Enterprise monitors and analyzes machine data from any source to deliver Operational Intelligence to optimize your IT, security and business performance. With intuitive analysis features, machine learning, packaged applications and open APIs, Splunk Enterprise is a flexible platform that scales from focused use cases to an enterprise-wide analytics backbone.

Splunk Enterprise 7.0

Metrics

Numerical data points captured over time, that can be compressed, stored, processed and retrieved more efficiently than events. In the new release, the use of metric data boosts the speed of monitoring, searching and alerting by at least 20X over previous releases.

Machine Learning Toolkit

Enhancements to the toolkit include an improved API, role-based access controls for machine learning models and new out-of-the-box algorithms to make it even easier for you to predict future IT, security, and business outcomes.
Read about our machine learning features.

Event Annotation

Decipher what is and is not actionable from disparate data sources. Event Annotation unifies and correlates log events, annotations and metrics into a single view.

Enterprise-Class High Availability and Scale

Multi-site clustering and automatic load balancing scale to support hundreds of terabytes of data per day, optimize response times and provide continuous availability. Search Head Clustering provides support for a virtually unlimited number of concurrent users and searches. In addition, the High Performance Analytics Store, the Metrics Store and other acceleration technologies enable you to generate reports on big data at lightning fast speeds.

Enterprise Security and Administration

A robust security model provides secure data transfer, granular role-based access controls, LDAP integration and single sign-on, auditability and data integrity. Every transaction is authenticated, whether through the web and mobile interfaces, command line interface or the Splunk Enterprise API. The distributed management console provides enterprise-wide administration and maintains a complete, signed audit trail of administrative actions and search history.

Splunkbase Apps and Add-Ons

Apps from Splunk, our partners and our community enhance and extend the power of the Splunk platform. Optimize data collection and analysis from your favorite sources. Empower users with pre-built visualizations and functions for security, IT management, business analysis and more. Whatever your need, these apps help you get powerful results right out of the box. Browse Splunkbase to take advantage of the 1,000+ apps and add-ons that you can immediately use with Splunk.
See what you can do with Splunk Apps and Add-Ons.

Open Development Platform

The Splunk platform makes it easy to customize Splunk Enterprise to meet the needs of any project. Developers can build custom Splunk applications or integrate Splunk data into other applications by using the Splunk REST API or SDKs for JavaScript, JSON, Java, Python, Ruby and PHP. Your custom applications can leverage the rich functionality of the Splunk platform as well as existing applications available in the Splunk applications library.
Check out the Splunk Developer Portal.

Enterprise Integration

Splunk Enterprise is the foundation for your enterprise-wide Operational Intelligence. Embed Splunk reports and data in any application. Enrich your relational databases and reports with Splunk insights, trigger actions in ticketing or other systems, or use our ODBC integrations to access Splunk Operational Intelligence in familiar applications such as Microsoft Excel or Tableau.

Splunkbase™ App Ecosystem

Apps from Splunk, our partners and our community enhance and extend the power of Splunk Enterprise. Optimize data collection and analysis from your favorite sources. Empower users with pre-built visualizations and functions. Learn more about the 1,000s of apps and add-ons available in Splunkbase.